Overview

Network administrators, auditors and architects know the importance of securing networks and finding security solutions that can be implemented quickly. This book focuses on ways to secure Cisco routers, it is a reference for protecting the protectors. Topics covered include: the importance of router security and where routers fit into an overall security plan; different router configurations for various versions of Cisco's IOS; standard ways to access a Cisco router and the security implications of each; password and privilege levels in Cisco routers; authentication, authorization and accounting (AAA) control; router warning banner use (as recommended by the FBI); unnecessary protocols and services commonly run on Cisco routers; SNMP security; anti-spoofing; protocol security for RIP, OSPF, EIGRP, NTP and BGP; logging violations; incident response; and physical security. There is a checklist at the end of each chapter that summarizes the hardening techniques discussed in the chapter. The checklists help double-check the configurations that have been instructed, and serve as quick references for future security procedures.

Full Product Details

Author:   Thomas Akin
Publisher:   O'Reilly Media
Imprint:   O'Reilly Media
Dimensions:   Width: 17.70cm , Height: 1.70cm , Length: 23.30cm
Weight:   0.304kg
ISBN:  

9780596001667

ISBN 10:   0596001665
Pages:   175
Publication Date:   02 April 2002
Audience:   College/higher education ,  Professional and scholarly ,  Tertiary & Higher Education ,  Professional & Vocational
Format:   Paperback
Publisher's Status:   Active
Availability:   Out of stock  
The supplier is temporarily out of stock of this item. It will be ordered for you on backorder and shipped when it becomes available.

Table of Contents

Preface 1. Router Security Router Security? Routers: The Foundation of the Internet What Can Go Wrong What Routers Are at Risk? Moving Forward 2. IOS Version Security The Need for a Current IOS Determining the IOS Version IOS Versions and Vulnerabilities IOS Security Checklist 3. Basic Access Control Authentication Versus Authorization Points of Access Basic Access Control Remote Administration Protection with IPSec Basic Access Control Security Checklist 4. Passwords and Privilege Levels Password Encryption Clear-Text Passwords service password-encryption Enable Security Strong Passwords Keeping Configuration Files Secure Privilege Levels Password Checklist 5. AAA Access Control Enabling AAA Local Authentication TACACS+ Authentication RADIUS Authentication Kerberos Authentication Token-Based Access Control AAA Security Checklist 6. Warning Banners Legal Issues Example Banner Adding Login Banners Warning Banner Checklist 7. Unnecessary Protocols and Services ICMP Source Routing Small Services Finger HTTP CDP Proxy ARP Miscellaneous SNMP Unnecessary Protocols and Services Checklist 8. SNMP Security SNMP Versions Securing SNMP v1 and v2c Securing SNMP v3 SNMP Management Servers SNMP Security Checklist 9. Secure Routing and Antispoofing Antispoofing Routing Protocol Security Routing Protocol and Antispoofing Checklist 10. NTP NTP Overview Configuring NTP NTP Checklist 11. Logging Logging in General Router Logging ACL Violation Logging AAA Accounting Logging Checklist A. Checklist Quick Reference B. Physical Security C. Incident Response D. Configuration Examples E. Resources Index

Reviews

"""This slim tome is a veritable gem of a book. It is written in a logical and clear style that permits reading from start to finish, but each specific section is complete in it's own right and as such it allows the reader to pick up the book and dip read satisfactorily. I learnt things from this book, and for me that is the best recommendation I can give."" - Raza Rizvi, news@UK"

This slim tome is a veritable gem of a book. It is written in a logical and clear style that permits reading from start to finish, but each specific section is complete in it's own right and as such it allows the reader to pick up the book and dip read satisfactorily. I learnt things from this book, and for me that is the best recommendation I can give. - Raza Rizvi, news@UK

Author Information

Thomas Akin is a Certified Information Systems Security Professional (CISSP) with a decade of experience in information security. He is the founding director of the Southeast Cybercrime Institute at Kennesaw State University, where he also serves as chairman of the Institute's Board of Advisors. He is an active member of the Attorney General's Georgia Cybercrime Task Force and heads its education committee. Heavily involved in Atlanta's InfoSec community, Thomas spends much of his time teaching, writing, and trying to keep his security, network, and Unix certifications up to date. Finally, he is the owner of and principal consultant for CrossRealm Consulting. More information about Thomas can be found at http: //www.crossrealm.com.

Tab Content 6

Author Website:  

Customer Reviews

Recent Reviews

No review item found!

Add your own review!

Countries Available

All regions